$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/F85A5EB6C33911E9A9463781C4F9AE02.roa File: F85A5EB6C33911E9A9463781C4F9AE02.roa (raw, json) Hash identifier: jot76CXrAz3dE65zS5eFuiF7pvf8X1MVAGSlp7hXRdo= Subject key identifier: B6:6A:2D:C4:27:D7:F8:7A:AE:E9:17:8A:E0:3A:29:64:10:91:D6:C4 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 119C Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/F85A5EB6C33911E9A9463781C4F9AE02.roa Signing time: Fri 06 Jun 2025 17:29:59 +0000 ROA not before: Fri 06 Jun 2025 17:29:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134221 IP address blocks: 103.59.48.0/22 maxlen: 22 103.59.48.0/24 maxlen: 24 103.59.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4508 (0x119c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 6 17:29:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68432597-6d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:53:a8:66:36:5c:21:b6:fa:34:f0:ef:e1:ea: ba:c8:fb:a8:f9:1b:e5:a9:7e:20:a0:81:0e:1f:5b: 5c:e9:5f:5c:12:54:04:d6:78:e3:99:a9:51:4a:f3: a8:f9:22:d5:91:0e:3a:d6:ae:b5:2b:19:dd:63:69: e0:ac:cc:e8:25:67:2b:d4:a3:b8:ee:f6:dd:f9:8d: 76:02:b8:5d:98:49:aa:cd:0d:3e:8b:29:81:d2:87: a4:a8:2f:a2:82:8d:12:f9:cb:ba:d7:99:c9:09:f8: 47:77:8a:73:75:dc:bf:9c:ed:8e:e9:14:a6:bb:8a: 7d:43:83:03:87:13:cf:a6:1e:7a:37:91:e2:ba:82: db:d7:86:f4:f9:85:cc:87:2e:e3:70:9f:fa:cd:36: 55:88:a4:22:9e:ee:e4:00:47:28:dd:ea:82:b2:aa: e1:a6:b3:2c:0e:33:14:d1:7e:2b:58:66:b5:64:9c: eb:58:c8:4e:d6:2a:a6:33:a9:c8:90:3d:ea:73:99: d5:e9:81:c7:62:1f:57:f8:de:96:b0:93:a4:88:b3: 70:b1:65:a2:e7:c5:48:5d:9d:6c:aa:d7:f6:e1:21: aa:1d:e9:6f:d9:f1:3b:a1:d9:4c:a1:a2:ae:b5:09: a6:47:65:04:31:2a:1e:9f:a9:34:29:52:70:d0:15: b4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:6A:2D:C4:27:D7:F8:7A:AE:E9:17:8A:E0:3A:29:64:10:91:D6:C4 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/F85A5EB6C33911E9A9463781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.59.48.0/22 Signature Algorithm: sha256WithRSAEncryption 46:40:43:f3:b7:ed:0a:43:ac:d7:33:d7:4a:02:ac:7d:5b:90: d5:8c:74:79:d9:e6:d1:5c:b7:14:2d:f3:bb:24:f2:89:99:5a: 36:8d:70:cf:50:0f:19:20:98:36:be:9f:66:de:c8:7a:20:a6: 74:a9:fc:d6:11:5f:93:ab:e7:5f:14:06:a2:f7:a8:d0:81:78: 33:7a:80:9b:33:01:08:9f:0e:65:cf:5d:a0:cf:24:c0:8a:7b: 85:c4:8d:67:46:83:4a:0b:de:fd:24:4e:7b:b4:bd:95:2f:6e: 39:6c:df:21:be:71:25:5e:ad:cf:81:ff:13:b0:d2:06:41:b5: c7:6b:25:e6:3e:41:c5:c9:16:28:9b:5a:f8:79:3d:70:2e:60: c4:4e:64:be:05:61:06:77:19:43:ae:1e:8c:40:b7:d9:92:a3: 11:0d:8c:aa:a9:9f:f8:e8:89:16:2d:fd:c7:f9:77:00:f4:cd: 00:97:c3:68:f5:54:2d:51:9f:e9:7e:1e:ac:ed:33:e5:23:3b: fe:e5:91:42:0b:fa:64:9b:30:00:17:2a:bd:8d:83:81:18:bd: 66:96:79:21:15:5f:b1:f3:35:32:06:22:63:90:eb:7a:28:b4: 1e:35:94:49:d6:64:0d:e3:c3:cd:00:b4:64:be:18:75:b3:83: be:9f:17:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUwNjA2MTcyOTU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMjU5Ny02ZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1OoZjZcIbb6NPDv4eq6yPuo+RvlqX4goIEOH1tc6V9cElQE1njjmalRSvOo +SLVkQ461q61KxndY2ngrMzoJWcr1KO47vbd+Y12ArhdmEmqzQ0+iymB0oekqC+i go0S+cu615nJCfhHd4pzddy/nO2O6RSmu4p9Q4MDhxPPph56N5HiuoLb14b0+YXM hy7jcJ/6zTZViKQinu7kAEco3eqCsqrhprMsDjMU0X4rWGa1ZJzrWMhO1iqmM6nI kD3qc5nV6YHHYh9X+N6WsJOkiLNwsWWi58VIXZ1sqtf24SGqHelv2fE7odlMoaKu tQmmR2UEMSoen6k0KVJw0BW07QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLZqLcQn 1/h6rukXiuA6KWQQkdbEMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEyQkMvRUJDRjE2ODIwNEY4MTFFOUJBNTAyNDMxQzRGOUFFMDIvRjg1QTVFQjZD MzM5MTFFOUE5NDYzNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnOzAwDQYJKoZIhvcNAQELBQADggEBAEZAQ/O37QpDrNcz 10oCrH1bkNWMdHnZ5tFctxQt87sk8omZWjaNcM9QDxkgmDa+n2beyHogpnSp/NYR X5Or518UBqL3qNCBeDN6gJszAQifDmXPXaDPJMCKe4XEjWdGg0oL3v0kTnu0vZUv bjls3yG+cSVerc+B/xOw0gZBtcdrJeY+QcXJFiibWvh5PXAuYMROZL4FYQZ3GUOu HoxAt9mSoxENjKqpn/joiRYt/cf5dwD0zQCXw2j1VC1Rn+l+HqztM+UjO/7lkUIL +mSbMAAXKr2Ng4EYvWaWeSEVX7HzNTIGImOQ63ootB41lEnWZA3jw80AtGS+GHWz g76fF+4= -----END CERTIFICATE-----Generated at Thu Jul 3 17:16:56 2025 by rpki-client